Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/34C5DF045DE811EEA57A8D354AD9E6FC.roa
File: 34C5DF045DE811EEA57A8D354AD9E6FC.roa (raw, json)
Hash identifier: FjBVLkEa/VJFoNONqhqTff4moeP1oYv9n0AHhE2a75U=
Subject key identifier: 76:BD:99:32:4A:C8:7C:59:FC:A9:71:ED:8F:CB:AF:C5:67:34:27:DE
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C39
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/34C5DF045DE811EEA57A8D354AD9E6FC.roa
Signing time: Thu 28 Sep 2023 10:17:19 +0000
ROA not before: Thu 28 Sep 2023 10:17:16 +0000
ROA not after: Fri 28 Sep 2029 10:17:16 +0000
asID: 47787
IP address blocks: 161.123.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3129 (0xc39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 28 10:17:16 2023 GMT
Not After : Sep 28 10:17:16 2029 GMT
Subject: CN=651552af-7e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c1:93:7b:a6:b7:4d:9f:b5:67:90:70:ce:6a:
27:e2:4e:c6:d1:4d:33:5e:0e:6b:b4:60:bb:59:ba:
d2:81:2b:3f:6f:6f:f4:2a:cb:36:f7:20:5c:8e:8e:
e5:b5:81:bb:60:a4:7f:39:0d:28:bc:e0:9b:eb:0d:
0c:ef:dd:2a:44:98:eb:7d:09:ba:d8:cd:ce:5a:c2:
cf:72:2f:97:ce:ca:cc:64:9d:a3:22:58:71:d4:9b:
36:4a:96:5f:a0:22:bc:fb:a7:fa:46:b1:98:3f:05:
ea:c1:8f:09:d2:7e:c9:68:de:8b:d4:c7:12:f6:e2:
d2:43:68:a9:31:1a:fb:fa:71:6e:49:cc:29:56:a3:
ad:6e:c5:c4:ad:30:14:e1:92:74:e3:e1:63:aa:98:
b3:94:a0:5a:88:b5:10:a6:9b:46:20:d2:2f:f2:95:
b4:16:a0:e2:82:ee:c5:7f:1c:3a:ec:97:6e:71:74:
cc:26:7e:33:ce:c4:21:90:8c:66:f9:4b:cc:bb:a2:
1b:f8:af:33:c0:d7:a3:e3:d7:31:c3:6a:0b:98:26:
68:e7:c3:da:50:57:52:3f:3a:1b:2d:28:62:41:a8:
ab:59:d1:6a:53:40:09:6d:b0:74:f4:91:2e:d7:f0:
67:7f:75:47:85:1b:a9:ee:b4:bf:ef:33:10:09:05:
94:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BD:99:32:4A:C8:7C:59:FC:A9:71:ED:8F:CB:AF:C5:67:34:27:DE
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/34C5DF045DE811EEA57A8D354AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3c:27:c3:bf:f0:67:b0:92:05:f1:1e:e8:3b:47:88:41:27:cb:
4a:d3:19:ea:13:3c:d9:55:ae:ce:fc:17:75:a9:7e:82:c0:c2:
bc:ec:63:a2:c7:1e:73:53:95:87:cf:88:e1:c7:28:3b:ca:50:
f2:c2:0d:d6:5e:b3:98:62:37:d5:bb:b2:a5:b7:81:32:c7:60:
33:15:f0:41:9e:9a:e6:7c:eb:1a:dc:7c:f8:a2:f0:2c:fb:23:
e2:dc:86:ca:25:e2:57:45:b1:95:f3:8c:0d:de:8b:c1:dc:4a:
38:07:9b:11:c2:ad:d4:c5:29:3f:75:38:5f:10:14:a2:5d:b4:
75:bf:66:ca:7c:d8:e7:b2:ba:33:e6:3f:a3:1f:82:c1:b9:9e:
62:35:3c:1d:07:8b:8f:94:3b:91:18:ac:c5:9c:35:50:75:f7:
d0:ea:76:2a:5c:a3:2d:c7:e1:c9:6e:a4:76:0e:16:37:0b:3b:
0f:0c:e3:66:02:3f:5c:1f:d8:59:1b:04:42:61:30:1b:43:c4:
c0:dc:73:75:72:d5:71:aa:45:50:ea:af:2f:f2:b0:ef:e4:fa:
96:09:d9:28:4c:ba:1a:e8:f9:47:ac:73:9f:40:0d:ab:ee:9b:
47:a4:f2:25:68:3c:20:cf:48:8f:d2:7b:2c:5b:be:7e:f7:bc:
61:36:d9:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:04:07 2024 by rpki-client on console-ams.rpki-client.org